This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft File: vIYHvM59W9TtuRjN4bc0W4HmrR0.mft (raw, json) Hash identifier: Zu8s7rX8Lc3VbOQaG6ZbJfJnOpplgVc6CFdQVsuP2RE= Subject key identifier: FB:01:17:45:5A:E9:98:FC:DF:21:10:08:02:C0:E5:1B:F1:69:C1:2F Authority key identifier: BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D Certificate issuer: /CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Certificate serial: 0CD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft Manifest number: 0CCE Signing time: Mon 22 Dec 2025 17:47:28 +0000 Manifest this update: Mon 22 Dec 2025 17:47:27 +0000 Manifest next update: Mon 29 Dec 2025 17:47:27 +0000 Files and hashes: 1: vIYHvM59W9TtuRjN4bc0W4HmrR0.crl (hash: qG44v7osVztndEcDWvq1EC9PiL2tYWDXc5OkD+wKdko=) 2: 8325B5147FE911F09A568E85C4F9AE02.roa (hash: v3/g5fOu1I3Xt9XyiRKqp60C0Htsc/EEKv6CYurACO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3287 (0xcd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B489, serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Validity Not Before: Dec 22 17:47:27 2025 GMT Not After : Dec 29 17:47:27 2025 GMT Subject: CN=6949842f-50d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e2:b7:67:d0:1f:68:b2:e5:73:39:be:5b:a4: c1:a6:c4:1b:0d:ef:49:04:fb:65:16:89:26:2e:f9: 9c:f9:8a:98:0a:fc:f9:e7:35:c2:2b:2e:c6:6f:2f: 76:f3:a0:cd:df:5c:f9:1a:02:45:7b:17:df:20:ce: 65:6d:81:b9:ed:5c:db:cf:42:32:e8:19:17:7c:17: a0:73:6e:47:05:5d:a9:f4:dc:e3:f2:f7:7a:38:9c: d6:fd:7d:06:f5:2d:2b:b2:49:52:f6:e7:fd:e0:fe: d9:63:83:8a:13:5a:2a:84:91:f3:b5:92:86:d0:07: 0a:29:b4:2f:08:1f:7c:c0:43:9a:59:99:95:12:dd: 85:db:2e:e3:22:79:c1:d9:5c:08:0d:fd:e0:3e:f8: 09:7f:7b:47:7c:fa:8d:5b:7c:5c:8f:3d:3b:5c:e8: c3:60:eb:e8:4f:88:6b:0e:1f:7b:1a:50:46:4d:88: 32:6d:03:67:7e:db:5e:fc:d3:94:83:be:44:d5:06: d0:1c:07:bf:94:3f:84:19:1b:a7:07:67:98:7b:22: ae:d5:2e:a1:87:e9:3c:b4:af:75:98:63:40:18:af: a8:4a:f5:0c:4b:4c:aa:2b:13:d8:b6:96:bd:11:05: 11:de:93:25:db:ef:a9:ab:c1:01:e3:cb:40:1c:ef: 5a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:01:17:45:5A:E9:98:FC:DF:21:10:08:02:C0:E5:1B:F1:69:C1:2F X509v3 Authority Key Identifier: keyid:BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:db:ed:70:79:f9:3e:19:bc:41:68:a0:33:69:1f:f9:57:88: de:c1:91:cf:26:48:4a:0f:a1:b7:6f:c0:85:4b:cc:3a:85:d0: 80:79:67:96:c4:c6:7e:97:9d:a9:99:48:8f:6f:e4:95:7d:b3: 6d:9f:80:2a:cd:bf:73:3d:9b:2c:10:21:7c:95:eb:84:18:5b: f0:3d:30:ad:2b:df:c2:2c:84:f8:65:ba:5e:f5:86:3b:60:47: b2:ce:4b:59:8b:d6:aa:68:c1:b4:22:bd:b2:8a:3a:90:45:8d: 2b:20:07:bf:91:2e:58:53:9c:5f:59:b4:94:32:a3:eb:95:b1: 67:a2:ab:8d:01:72:e5:97:45:de:f1:78:c2:3e:b1:de:7b:1b: ab:d9:72:00:60:9f:09:6b:fc:f7:9f:26:84:77:0e:d6:21:2a: 93:aa:c9:15:ac:2d:c8:83:f2:c5:a0:f6:c2:dc:6a:32:c5:06: fc:80:e9:ae:cb:03:ba:2a:24:5c:ab:fa:ab:db:40:6f:bc:c8: f9:fa:c7:7e:a3:24:94:d2:3b:28:12:50:c0:90:fe:e9:65:2b: a7:5e:95:7e:f9:88:e5:c8:56:84:1c:f5:e1:48:20:75:14:b3: ae:d7:25:67:32:e1:9b:67:5d:70:f3:ac:7e:4b:c5:9f:cb:bb: a3:36:e9:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0ODkxMTAvBgNVBAUTKEJDODYwN0JDQ0U3RDVCRDRFREI5MThDREUxQjczNDVC ODFFNkFEMUQwHhcNMjUxMjIyMTc0NzI3WhcNMjUxMjI5MTc0NzI3WjAYMRYwFAYD VQQDDA02OTQ5ODQyZi01MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+K3Z9AfaLLlczm+W6TBpsQbDe9JBPtlFokmLvmc+YqYCvz55zXCKy7Gby92 86DN31z5GgJFexffIM5lbYG57Vzbz0Iy6BkXfBegc25HBV2p9Nzj8vd6OJzW/X0G 9S0rsklS9uf94P7ZY4OKE1oqhJHztZKG0AcKKbQvCB98wEOaWZmVEt2F2y7jInnB 2VwIDf3gPvgJf3tHfPqNW3xcjz07XOjDYOvoT4hrDh97GlBGTYgybQNnftte/NOU g75E1QbQHAe/lD+EGRunB2eYeyKu1S6hh+k8tK91mGNAGK+oSvUMS0yqKxPYtpa9 EQUR3pMl2++pq8EB48tAHO9apQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsBF0Va 6Zj83yEQCALA5RvxacEvMB8GA1UdIwQYMBaAFLyGB7zOfVvU7bkYzeG3NFuB5q0d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjQ4OS8wQjM4NzlDQUZG OUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5VHR1UmpONGJjMFc0SG1y UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWUh2TTU5VzlUdHVSak40YmMwVzRIbXJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjQ4OS8wQjM4NzlDQUZGOUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5 VHR1UmpONGJjMFc0SG1yUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM2+1wefk+GbxBaKAzaR/5V4jewZHPJkhKD6G3b8CFS8w6hdCAeWeW xMZ+l52pmUiPb+SVfbNtn4Aqzb9zPZssECF8leuEGFvwPTCtK9/CLIT4Zbpe9YY7 YEeyzktZi9aqaMG0Ir2yijqQRY0rIAe/kS5YU5xfWbSUMqPrlbFnoquNAXLll0Xe 8XjCPrHeexur2XIAYJ8Ja/z3nyaEdw7WISqTqskVrC3Ig/LFoPbC3GoyxQb8gOmu ywO6KiRcq/qr20BvvMj5+sd+oySU0jsoElDAkP7pZSunXpV++YjlyFaEHPXhSCB1 FLOu1yVnMuGbZ11w86x+S8Wfy7ujNulJ -----END CERTIFICATE-----Generated at Tue Dec 23 17:44:03 2025 by rpki-client